CVE-2026-7237

Summary

A vulnerability was detected in AgiFlow scaffold-mcp up to 1.0.27. Affected by this issue is some unknown functionality of the file packages/scaffold-mcp/src/server/index.ts of the component write-to-file Tool. The manipulation of the argument file_path results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Upgrading to version 1.1.0 can resolve this issue. The patch is identified as c4d23592ae5fb59cfeefc4641e6826f8ac89b9c6. You should upgrade the affected component.

Affected Software

VendorProductVersion RangeStatus
AgiFlowscaffold-mcp1.0.0affected
AgiFlowscaffold-mcp1.0.1affected
AgiFlowscaffold-mcp1.0.2affected
AgiFlowscaffold-mcp1.0.3affected
AgiFlowscaffold-mcp1.0.4affected
AgiFlowscaffold-mcp1.0.5affected
AgiFlowscaffold-mcp1.0.6affected
AgiFlowscaffold-mcp1.0.7affected
AgiFlowscaffold-mcp1.0.8affected
AgiFlowscaffold-mcp1.0.9affected
AgiFlowscaffold-mcp1.0.10affected
AgiFlowscaffold-mcp1.0.11affected
AgiFlowscaffold-mcp1.0.12affected
AgiFlowscaffold-mcp1.0.13affected
AgiFlowscaffold-mcp1.0.14affected
AgiFlowscaffold-mcp1.0.15affected
AgiFlowscaffold-mcp1.0.16affected
AgiFlowscaffold-mcp1.0.17affected
AgiFlowscaffold-mcp1.0.18affected
AgiFlowscaffold-mcp1.0.19affected
AgiFlowscaffold-mcp1.0.20affected
AgiFlowscaffold-mcp1.0.21affected
AgiFlowscaffold-mcp1.0.22affected
AgiFlowscaffold-mcp1.0.23affected
AgiFlowscaffold-mcp1.0.24affected
AgiFlowscaffold-mcp1.0.25affected
AgiFlowscaffold-mcp1.0.26affected
AgiFlowscaffold-mcp1.0.27affected
AgiFlowscaffold-mcp1.1.0unaffected

Weaknesses

  • CWE-22: Path Traversal

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References